Re: [Qemu-arm] [Qemu-devel] [PATCH v3] ARM: ACPI: Fix use-after-free due

qemu-arm

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-arm] [Qemu-devel] [PATCH v3] ARM: ACPI: Fix use-after-free due

From:	Peter Maydell
Subject:	Re: [Qemu-arm] [Qemu-devel] [PATCH v3] ARM: ACPI: Fix use-after-free due to memory realloc
Date:	Thu, 31 May 2018 14:42:47 +0100

On 30 May 2018 at 10:03, Auger Eric <address@hidden> wrote:
> Hi Shannon,
>
> On 05/30/2018 09:05 AM, Shannon Zhao wrote:
>> acpi_data_push uses g_array_set_size to resize the memory size. If there
>> is no enough contiguous memory, the address will be changed. So previous
>> pointer could not be used any more. It must update the pointer and use
>> the new one.
>>
>> Also, previous codes wrongly use le32 conversion of iort->node_offset
>> for subsequent computations that will result incorrect value if host is
>> not litlle endian. So use the non-converted one instead.
>>
>> Signed-off-by: Shannon Zhao <address@hidden>
> Reviewed-by: Eric Auger <address@hidden>



Applied to target-arm.next, thanks.

-- PMM

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-arm] [PATCH v3] ARM: ACPI: Fix use-after-free due to memory realloc, Shannon Zhao, 2018/05/30
- Re: [Qemu-arm] [Qemu-devel] [PATCH v3] ARM: ACPI: Fix use-after-free due to memory realloc, Auger Eric, 2018/05/30
  - Re: [Qemu-arm] [Qemu-devel] [PATCH v3] ARM: ACPI: Fix use-after-free due to memory realloc, Peter Maydell <=

Prev by Date: Re: [Qemu-arm] [Qemu-devel] [PATCH 00/27] iommu: support txattrs, support TCG execution, implement TZ MPC
Next by Date: Re: [Qemu-arm] [PATCH v5 2/2] arm_gicv3_kvm: kvm_dist_get/put: skip the registers banked by GICR
Previous by thread: Re: [Qemu-arm] [Qemu-devel] [PATCH v3] ARM: ACPI: Fix use-after-free due to memory realloc
Next by thread: [Qemu-arm] [PATCH 0/4] aspeed: add MMIO exec support to the FMC controller
Index(es):
- Date
- Thread